FOREVERVAULT — PRIVACY POLICY

Effective Date: December 1, 2025

Last Updated: December 1, 2025

This Privacy Policy ("Policy") describes how ForeverVault LLC, an Arizona limited liability company ("ForeverVault," "we," "our," or "us"), collects, uses, processes, and protects personal information when you access or use our websites, services, software, platforms, and applications (collectively, the "Service").

By using the Service, you agree to the practices described in this Policy.

If you do not agree, you must discontinue use of the Service.

1. WHO WE ARE

ForeverVault provides a zero-knowledge encrypted document storage and sharing platform.

ForeverVault LLC

Email: info@forevervault.com

Website: https://forevervault.com

Address: P.O. Box 170168, Miami Florida 33015

2. TYPES OF INFORMATION WE COLLECT

We collect the following information to provide and secure the Service:

2.1 Account Information

Name or username

Email address

Mobile phone number (for SMS verification)

Authentication data (passwords stored using one-way hashing)

Subscription details (plan type, payment status, billing history)

2.2 Encrypted User Content

Documents, files, metadata, and notes you upload or create

All User Content is encrypted client-side, and ForeverVault cannot access or decrypt your uploaded content.

2.3 Device, Log, and Usage Data

IP address

Browser type and version

Device identifiers

Operating system

Dates/times of access

Pages viewed and actions taken

Error logs and diagnostic information

2.4 Cookies and Similar Technologies

We use essential and functional cookies for:

Login sessions

Account security

Preferences

Basic analytics

You may disable nonessential cookies. Essential cookies are required for account access.

2.5 Communications

Emails and messages you send to us

Notifications and alerts we send to you

SMS authentication messages (one-time passcodes, verification)

2.6 Legal and Administrative Information

If required for estate handling, account closure, or legal compliance, ForeverVault may collect:

Death certificates

Executor documentation

Identity verification for heirs or authorized representatives

3. HOW WE USE INFORMATION

We process personal information for the following purposes:

3.1 Service Operation

Creating and maintaining your account

Allowing uploads, storage, retrieval, and sharing of encrypted content

Managing item and storage limits

Authenticating logins and actions

3.2 Security and Integrity

Multi-factor authentication (including SMS codes)

Fraud detection and prevention

Monitoring for suspicious activity

Protecting against unauthorized access

3.3 Account Notifications

Activation and security emails

Inactivity notifications and confirmations

Subscription and billing notices

Mandatory service and policy updates

3.4 Legacy and Estate-Related Actions

Initiating legacy workflows

Providing limited access to trusted contacts or heirs when authorized

Managing the 24-month estate access window after death

3.5 Compliance

Meeting legal obligations

Responding to law enforcement requests when legally required

Maintaining compliance records

ForeverVault does not sell personal information.

4. ZERO-KNOWLEDGE MODEL AND ENCRYPTED CONTENT

ForeverVault uses a zero-knowledge encryption architecture, meaning:

All User Content is encrypted before it reaches our servers

ForeverVault cannot decrypt, read, or access User Content

We cannot recover lost passwords or keys

We cannot verify the accuracy of documents uploaded

You are responsible for safeguarding your credentials and understanding that loss of credentials may result in permanent loss of access to User Content.

5. NO STORAGE OF SENSITIVE CRYPTOGRAPHIC SECRETS

ForeverVault does not permit or support storage of:

Private cryptographic keys

Seed phrases or mnemonic codes

Exchange or wallet passwords

Authentication tokens

Users bear all responsibility for compliance with this requirement.

6. HOW WE SHARE INFORMATION

We do not sell your information.

We may share limited personal data only in the following circumstances:

6.1 Service Providers

We use trusted third-party companies to provide:

Hosting (AWS)

Email delivery

SMS transmission

Error logging

Payment processing (Stripe)

These providers act only on our instructions and under contractual confidentiality obligations.

6.2 Legal Requirements

We may disclose information if required by:

Court orders

Law enforcement

Regulatory authorities

To protect our rights, security, or users

6.3 With Your Direction

When you:

Share content

Add trusted contacts

Approve legacy actions

Designate an executor or heir

6.4 Estate Requests

Upon verified death and proper documentation, we may disclose limited information to authorized heirs or representatives as described in the Terms of Service.

7. INTERNATIONAL TRANSFERS

ForeverVault stores all data exclusively within the United States using AWS infrastructure.

We do not transfer User Content or personal data outside the U.S.

8. DATA RETENTION

We retain personal information only as necessary to:

Maintain your account

Provide the Service

Comply with legal obligations

Resolve disputes

Enforce our Terms

8.1 Account Deletion

When you delete your account:

Encrypted User Content is permanently deleted

Backup copies are purged according to our retention schedule

Some transactional or security logs may remain where legally required

8.2 Inactive Accounts

In accordance with user-selected inactivity settings, ForeverVault may:

Mark accounts as inactive

Notify trusted contacts

Restrict account activity

Close accounts after extended inactivity (e.g., 24 months)

8.3 Accounts of Deceased Users

As per the Terms of Service:

Accounts remain accessible to authorized heirs for up to 24 months

Thereafter, the account and all encrypted content are permanently deleted

9. SECURITY

We implement administrative, technical, and organizational safeguards, including:

Client-side encryption

TLS encryption in transit

Strong credential hashing

Access controls

System monitoring

AWS infrastructure protections

No system is 100% secure. Users must maintain secure devices and passwords.

10. YOUR RIGHTS

Depending on your jurisdiction, you may request:

Access to personal information

Correction or updates

Deletion of personal data

Restriction of processing

Portability of non-encrypted data

Withdrawal of consent for certain processing

Requests: info@forevervault.com

Because ForeverVault is zero-knowledge, we cannot decrypt or access User Content to fulfill content-level requests.

11. CHILDREN'S PRIVACY

The Service is not directed to children under sixteen (16).

If you believe a child has provided personal information, contact us, and we will take appropriate action.

12. CHANGES TO THIS POLICY

We may update this Policy from time to time.

Changes will be posted with a new "Last Updated" date.

Material changes may be communicated via email or in-service notifications.

Your continued use of the Service constitutes acceptance of the updated Policy.

13. CONTACT US

For questions regarding this Policy:

ForeverVault LLC

Email: info@forevervault.com

Address: P.O. Box 170168, Miami Florida 33015